Re: Authenticate before loading the application
it's not enough for you doing something like this?
<filter-name>SecurityFilter</filter-name>
<filter-class>com.domain.app.filter.SecurityFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>SecurityFilter</filter-name>
<url-pattern>oneServletURL</url-pattern>
</filter-mapping>
<filter-name>SecurityFilter</filter-name>
<url-pattern>oneServletURL</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>SecurityFilter</filter-name>
<url-pattern>anotherServletURL</url-pattern>
</filter-mapping>
<filter-mapping><filter-name>SecurityFilter</filter-name>
<url-pattern>anotherServletURL</url-pattern>
</filter-mapping>
<filter-name>SecurityFilter</filter-name>
<url-pattern>*.js</url-pattern>
</filter-mapping>
<filter-mapping>
<filter-name>SecurityFilter</filter-name>
<url-pattern>*.css</url-pattern>
</filter-mapping>
<filter-name>SecurityFilter</filter-name>
<url-pattern>*.css</url-pattern>
</filter-mapping>
... and more filter-mapping for your other resources files.
On Tue, Feb 9, 2010 at 6:20 PM, Simon <sp.majou@gmail.com> wrote:
@dougx
Thanks for your post, I didn't knew that app engine did not support
304.
One difference: I want the files to be accessed *only* by servlet, ie
the servlet should serve the files, not redirect to them.
> Serve content via servlet, it's fair easy. For an example look here:http://blog.goodcamel.com/2010/01/08/workaround-for-google-app-engine...
>
> You can then check in the servlet for authentication via cookie / id
> and refuse to serve unauthenticated users.
>
> ~
> Doug.
>
> On Feb 9, 6:26 am, Simon <sp.ma...@gmail.com> wrote:
>
>
>
> > Yes that is the basics of app engine security. I use it to get the
> > Google account of the user.
>
> > This is the first step of the login: Google authentication.
> > Second step I want to validate the Google account against my own set
> > of users,
> > Last step I want to send to the user the whole javascript app.
>
> > On 8 fév, 23:04, Youngster <aecdej...@gmail.com> wrote:
>
> > > Did you have a look at this page:http://code.google.com/appengine/docs/java/config/webxml.html#Securit...
> > > ?
--
You received this message because you are subscribed to the Google Groups "Google Web Toolkit" group.
To post to this group, send email to google-web-toolkit@googlegroups.com.
To unsubscribe from this group, send email to google-web-toolkit+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/google-web-toolkit?hl=en.
--
You received this message because you are subscribed to the Google Groups "Google Web Toolkit" group.
To post to this group, send email to google-web-toolkit@googlegroups.com.
To unsubscribe from this group, send email to google-web-toolkit+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/google-web-toolkit?hl=en.
posted by twitter @ 6:48 PM
0 Comments
0 Comments:
Post a Comment
Subscribe to Post Comments [Atom]
<< Home